Cisco tau tshaj tawm cov kev tshaj tawm tshiab ntawm pob dawb tiv thaiv kab mob ClamAV 1.0.1, 0.105.3 thiab 0.103.8, uas tshem tawm qhov tsis txaus ntseeg tseem ceeb (CVE-2023-20032) uas tuaj yeem ua rau kev ua tiav code thaum luam theej duab cov ntaub ntawv nrog cov duab tshwj xeeb tsim hauv disk hauv ClamAV HFS+ format.
Qhov tsis zoo yog tshwm sim los ntawm qhov tsis muaj kev kuaj xyuas qhov tsis zoo, uas tso cai rau koj sau koj cov ntaub ntawv mus rau thaj tsam dhau ntawm qhov tsis muaj ciam teb thiab teeb tsa kev ua tiav ntawm cov cai nrog cov cai ntawm ClamAV txheej txheem, piv txwv li, luam theej duab cov ntaub ntawv rho tawm los ntawm cov ntawv sau rau ntawm mail server. Kev tshaj tawm ntawm pob hloov tshiab hauv kev faib khoom tuaj yeem taug qab ntawm nplooj ntawv: Debian, Ubuntu, Gentoo, RHEL, SUSE, Arch, FreeBSD, NetBSD.
Cov kev tshaj tawm tshiab kuj txhim kho lwm qhov tsis zoo (CVE-2023-20052) uas tuaj yeem xau cov ntsiab lus los ntawm cov ntaub ntawv ntawm lub server uas tau nkag los ntawm cov txheej txheem ua qhov scan. Qhov tsis zoo tshwm sim thaum parsing tshwj xeeb tsim cov ntaub ntawv nyob rau hauv DMG hom thiab yog tshwm sim los ntawm qhov tseeb hais tias tus parser, thaum lub sij hawm parsing txheej txheem, tso cai rau kev hloov ntawm lwm yam XML cov ntsiab lus uas tau hais nyob rau hauv cov ntaub ntawv parsed DMG.
Tau qhov twg los: opennet.ru